{"id":1385,"date":"2024-11-03T20:58:25","date_gmt":"2024-11-03T11:58:25","guid":{"rendered":"https:\/\/daba-no-heya.com\/?p=1385"},"modified":"2024-11-03T20:58:26","modified_gmt":"2024-11-03T11:58:26","slug":"post-1385","status":"publish","type":"post","link":"https:\/\/daba-no-heya.com\/?p=1385","title":{"rendered":"Terraform\u306efor_each\u30672\u91cd\u30eb\u30fc\u30d7\u3092\u5b9f\u73fe\u3059\u308b"},"content":{"rendered":"\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/daba-no-heya.com\/?p=1385\/#%E7%B5%90%E8%AB%96\" >\u7d50\u8ad6<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/daba-no-heya.com\/?p=1385\/#%E8%A7%A3%E8%AA%AC\" >\u89e3\u8aac<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E7%B5%90%E8%AB%96\"><\/span>\u7d50\u8ad6<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u307e\u305aflatten\u95a2\u6570\u3092\u4f7f\u3063\u3066\u30cd\u30b9\u30c8\u306b\u306a\u3063\u3066\u3044\u308b\u30c7\u30fc\u30bf\u69cb\u9020\u3092\u5e73\u3089\u306b\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>role_policy_arns = flatten([\n  for k, v in local.roles : [\n    for policy_arn in v.policy_arns : {\n      role_name  = k\n      policy_arn = policy_arn\n    }\n  ]\n])<\/code><\/pre>\n\n\n\n<p>\u4f5c\u6210\u3057\u305fmap\u306e\u30ea\u30b9\u30c8\u304b\u3089for_each\u3067\u4f7f\u3046\u305f\u3081\u306emap\u3092\u65b0\u3057\u304f\u4f5c\u6210\u3057\u307e\u3059\u3002<br>\u3053\u306e\u3068\u304d\u306e\u30ad\u30fc\u306fmap\u306e\u5024\u3092\u4f7f\u3063\u3066\u4e00\u610f\u306b\u306a\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>for_each = {\n  for v in local.role_policy_arns : \"${v.role_name}\/${v.policy_arn}\" => v\n}<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E8%A7%A3%E8%AA%AC\"><\/span>\u89e3\u8aac<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code\"><code>$ terraform -v\nTerraform v1.9.8\non linux_amd64\n+ provider registry.terraform.io\/hashicorp\/aws v5.74.0<\/code><\/pre>\n\n\n\n<p>AWS\u306eIAM\u30ed\u30fc\u30eb\u306e\u540d\u524d\u3068\u305d\u308c\u306b\u30a2\u30bf\u30c3\u30c1\u3059\u308bIAM\u30dd\u30ea\u30b7\u30fc\u306eARN\u3092\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u5b9a\u7fa9\u3059\u308b\u3068\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>locals {\n  roles = {\n    \"test-role-1\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonEC2FullAccess\"\n      ]\n    }\n    \"test-role-2\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n      ]\n    }\n    \"test-role-3\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonSQSFullAccess\",\n        \"arn:aws:iam::aws:policy\/AmazonSNSFullAccess\",\n        \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n      ]\n    }\n  }\n}<\/code><\/pre>\n\n\n\n<p>map\u306e\u30ad\u30fc\u304cIAM\u30ed\u30fc\u30eb\u306e\u540d\u524d\u3067\u3001map\u306e\u5024\u3068\u3057\u3066\u30a2\u30bf\u30c3\u30c1\u3059\u308bIAM\u30dd\u30ea\u30b7\u30fc\u306eARN\u306e\u30ea\u30b9\u30c8(<code>policy_arns<\/code>)\u304c\u5165\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n\n\n\n<p>IAM\u30ed\u30fc\u30eb\u306b\u3064\u3044\u3066\u306f\u5358\u7d14\u306bfor_each\u3067\u4f5c\u6210\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>resource \"aws_iam_role\" \"test\" {\n  for_each = local.roles\n\n  name = each.key\n  assume_role_policy = jsonencode({\n    Version = \"2012-10-17\"\n    Statement = [\n      {\n        Effect = \"Allow\"\n        Action = \"sts:AssumeRole\"\n        Principal = {\n          Service = \"lambda.amazonaws.com\"\n        }\n      }\n    ]\n  })\n}<\/code><\/pre>\n\n\n\n<p>\u4f5c\u6210\u3057\u305fIAM\u30ed\u30fc\u30eb\u306bIAM\u30dd\u30ea\u30b7\u30fc\u3092\u30a2\u30bf\u30c3\u30c1\u3059\u308b\u305f\u3081\u3001<a href=\"https:\/\/registry.terraform.io\/providers\/hashicorp\/aws\/latest\/docs\/resources\/iam_role_policy_attachment\" data-type=\"link\" data-id=\"https:\/\/registry.terraform.io\/providers\/hashicorp\/aws\/latest\/docs\/resources\/iam_role_policy_attachment\" target=\"_blank\" rel=\"noreferrer noopener\">aws_iam_role_policy_attachment<\/a>\u3092\u4f7f\u7528\u3057\u307e\u3059\u3002<br>\u3053\u306e\u30ea\u30bd\u30fc\u30b9\u306f\u5f15\u6570\u3068\u3057\u3066IAM\u30ed\u30fc\u30eb\u306e\u540d\u524d\u3068\u305d\u308c\u306b\u30a2\u30bf\u30c3\u30c1\u3059\u308b\u30dd\u30ea\u30b7\u30fc\u306eARN\u3092\u4e00\u3064\u53d7\u3051\u53d6\u308a\u307e\u3059\u3002<br>\u3057\u305f\u304c\u3063\u3066\u3001\u305d\u308c\u305e\u308c\u306eIAM\u30ed\u30fc\u30eb\u306b\u5bfe\u3057\u3066\u4e00\u3064\u305a\u3064\u30dd\u30ea\u30b7\u30fc\u3092\u30a2\u30bf\u30c3\u30c1\u3059\u308b\u305f\u3081\u3001for_each\u30672\u91cd\u30eb\u30fc\u30d7\u306e\u3088\u3046\u306a\u52d5\u4f5c\u3092\u5b9f\u73fe\u3057\u305f\u304f\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u3053\u306e\u5834\u5408\u306e\u4e00\u3064\u306e\u89e3\u6c7a\u7b56\u3068\u3057\u3066\u306f\u3001IAM\u30dd\u30ea\u30b7\u30fc\u3092\u30a2\u30bf\u30c3\u30c1\u3059\u308b\u305f\u3081\u306e\u30e2\u30b8\u30e5\u30fc\u30eb\u3092\u7528\u610f\u3059\u308b\u3053\u3068\u304c\u3042\u308a\u307e\u3059\u3002<br>\u30e2\u30b8\u30e5\u30fc\u30eb\u306e\u5f15\u6570\u3068\u3057\u3066\u30ea\u30b9\u30c8\u3092\u53d7\u3051\u53d6\u308a\u3001\u30e2\u30b8\u30e5\u30fc\u30eb\u306e\u4e2d\u3067\u30ea\u30b9\u30c8\u306e\u5404\u8981\u7d20\u306b\u3064\u3044\u3066for_each\u3067resource\u3092\u4f5c\u6210\u3059\u308b\u3053\u3068\u3067\u30012\u91cd\u30eb\u30fc\u30d7\u306e\u52d5\u4f5c\u3092\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002<br>\u51e6\u7406\u304c\u8907\u96d1\u3067\u3042\u3063\u305f\u308a\u540c\u3058\u3088\u3046\u306a\u51e6\u7406\u3092\u8272\u3005\u306a\u3068\u3053\u308d\u3067\u4f7f\u3046\u3068\u3044\u3046\u3053\u3068\u3067\u3042\u308c\u3070\u3001\u30e2\u30b8\u30e5\u30fc\u30eb\u3092\u4f5c\u6210\u3059\u308b\u306e\u304c\u3044\u3044\u3068\u601d\u3044\u307e\u3059\u3002<\/p>\n\n\n\n<p>\u3053\u306e\u8a18\u4e8b\u3067\u306f\u3001\u30e2\u30b8\u30e5\u30fc\u30eb\u3092\u7528\u610f\u3059\u308b\u307b\u3069\u3067\u306f\u306a\u3044\u306a&#8230;\u3001\u3068\u3044\u3046\u5834\u5408\u306e\u305f\u3081\u306b\u3001flatten\u95a2\u6570\u3092\u4f7f\u3063\u305f\u89e3\u6c7a\u7b56\u3092\u7d39\u4ecb\u3057\u305f\u3044\u3068\u601d\u3044\u307e\u3059\u3002<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p>aws_iam_role_policy_attachment\u3092for_each\u3067\u56de\u3059\u305f\u3081\u306b\u306f\u3001IAM\u30ed\u30fc\u30eb\u306e\u540d\u524d\u3068\u305d\u308c\u306b\u30a2\u30bf\u30c3\u30c1\u3059\u308b\u30dd\u30ea\u30b7\u30fc\u306eARN\u304c\u4e00\u5bfe\u4e00\u3067\u5bfe\u5fdc\u3059\u308b\u30c7\u30fc\u30bf\u69cb\u9020\u3067\u3042\u308c\u3070\u3088\u3055\u305d\u3046\u3067\u3059\u3002<br>\u3053\u308c\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u3059\u308b\u3068\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>locals {\n  role_policy_arns = flatten([\n    for k, v in local.roles : [\n      for policy_arn in v.policy_arns : {\n        role_name  = k\n        policy_arn = policy_arn\n      }\n    ]\n  ])\n}<\/code><\/pre>\n\n\n\n<ol class=\"wp-block-list\">\n<li><code>policy_arns<\/code>\u3092\u5c55\u958b\u3057\u3066IAM\u30ed\u30fc\u30eb\u306e\u540d\u524d\u3068\u30dd\u30ea\u30b7\u30fc\u306eARN\u3092\u683c\u7d0d\u3057\u305fmap\u3092\u4f5c\u6210\u3059\u308b\n<ul class=\"wp-block-list\">\n<li>\u3053\u306e\u51e6\u7406\u3067map\u306e\u30ea\u30b9\u30c8\u304c\u4f5c\u6210\u3055\u308c\u308b<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>\u4e0a\u306e\u51e6\u7406\u3092\u305d\u308c\u305e\u308c\u306eIAM\u30ed\u30fc\u30eb\u306b\u3064\u3044\u3066\u5b9f\u884c\u3059\u308b\n<ul class=\"wp-block-list\">\n<li>\u30ea\u30b9\u30c8\u306e\u30ea\u30b9\u30c8(2\u91cd\u30ea\u30b9\u30c8)\u304c\u4f5c\u6210\u3055\u308c\u308b<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<p>2\u91cd\u306e\u30ea\u30b9\u30c8\u306b\u306a\u3063\u3066\u3044\u308b\u3068for_each\u3067\u56de\u305b\u306a\u3044\u306e\u3067\u3001flatten\u95a2\u6570\u3092\u4f7f\u3063\u3066\u5e73\u3089\u306b\u3057\u307e\u3059\u3002<br>\u7d50\u679c\u3068\u3057\u3066\u3001<code>role_policy_arns<\/code>\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306a\u5024\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ terraform console\n> local.role_policy_arns\n&#91;\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\"\n    \"role_name\" = \"test-role-1\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/AmazonEC2FullAccess\"\n    \"role_name\" = \"test-role-1\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\"\n    \"role_name\" = \"test-role-2\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n    \"role_name\" = \"test-role-2\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\"\n    \"role_name\" = \"test-role-3\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/AmazonSQSFullAccess\"\n    \"role_name\" = \"test-role-3\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/AmazonSNSFullAccess\"\n    \"role_name\" = \"test-role-3\"\n  },\n  {\n    \"policy_arn\" = \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n    \"role_name\" = \"test-role-3\"\n  },\n]<\/code><\/pre>\n\n\n\n<p>\u3053\u308c\u3092resource\u306efor_each\u3067\u56de\u3057\u307e\u3059\u3002<br>for_each\u306e\u30ad\u30fc\u306f\u4e00\u610f\u306a\u3082\u306e\u3067\u3042\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u304c\u3001\u4eca\u56de\u306e\u5834\u5408\u306f<code>role_name<\/code>\u3068<code>policy_arn<\/code>\u3092\u7d44\u307f\u5408\u308f\u305b\u3066\u3084\u308b\u3053\u3068\u3067\u4e00\u610f\u306a\u5024\u3092\u4f5c\u6210\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>resource \"aws_iam_role_policy_attachment\" \"test\" {\n  for_each = {\n    for v in local.role_policy_arns : \"${v.role_name}\/${v.policy_arn}\" => v\n  }\n\n  role       = each.value.role_name\n  policy_arn = each.value.policy_arn\n\n  depends_on = [\n    aws_iam_role.test\n  ]\n}<\/code><\/pre>\n\n\n\n<p>\u6700\u5f8c\u306bTerraform\u30b3\u30fc\u30c9\u5168\u4f53\u3092\u63b2\u8f09\u3057\u3066\u304a\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<pre class=\"wp-block-luxe-blocks-syntaxhighlighter\"><code>locals {\n  roles = {\n    \"test-role-1\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonEC2FullAccess\"\n      ]\n    }\n    \"test-role-2\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n      ]\n    }\n    \"test-role-3\" = {\n      policy_arns = [\n        \"arn:aws:iam::aws:policy\/service-role\/AWSLambdaBasicExecutionRole\",\n        \"arn:aws:iam::aws:policy\/AmazonSQSFullAccess\",\n        \"arn:aws:iam::aws:policy\/AmazonSNSFullAccess\",\n        \"arn:aws:iam::aws:policy\/AmazonS3FullAccess\"\n      ]\n    }\n  }\n}\n\nresource \"aws_iam_role\" \"test\" {\n  for_each = local.roles\n\n  name = each.key\n  assume_role_policy = jsonencode({\n    Version = \"2012-10-17\"\n    Statement = [\n      {\n        Effect = \"Allow\"\n        Action = \"sts:AssumeRole\"\n        Principal = {\n          Service = \"lambda.amazonaws.com\"\n        }\n      }\n    ]\n  })\n}\n\nlocals {\n  role_policy_arns = flatten([\n    for k, v in local.roles : [\n      for policy_arn in v.policy_arns : {\n        role_name  = k\n        policy_arn = policy_arn\n      }\n    ]\n  ])\n}\n\nresource \"aws_iam_role_policy_attachment\" \"test\" {\n  for_each = {\n    for v in local.role_policy_arns : \"${v.role_name}\/${v.policy_arn}\" => v\n  }\n\n  role       = each.value.role_name\n  policy_arn = each.value.policy_arn\n\n  depends_on = [\n    aws_iam_role.test\n  ]\n}<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u7d50\u8ad6 \u307e\u305aflatten\u95a2\u6570\u3092\u4f7f\u3063\u3066\u30cd\u30b9\u30c8\u306b\u306a\u3063\u3066\u3044\u308b\u30c7\u30fc\u30bf\u69cb\u9020\u3092\u5e73\u3089\u306b\u3057\u307e\u3059\u3002 \u4f5c\u6210\u3057\u305fmap\u306e\u30ea\u30b9\u30c8\u304b\u3089for_each\u3067\u4f7f\u3046\u305f\u3081\u306emap\u3092\u65b0\u3057\u304f\u4f5c\u6210\u3057\u307e\u3059\u3002\u3053\u306e\u3068\u304d\u306e\u30ad\u30fc\u306fmap\u306e\u5024\u3092\u4f7f\u3063\u3066\u4e00\u610f\u306b\u306a\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002 [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,8],"tags":[],"class_list":["post-1385","post","type-post","status-publish","format-standard","hentry","category-terraform","category-8"],"_links":{"self":[{"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/posts\/1385","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1385"}],"version-history":[{"count":6,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/posts\/1385\/revisions"}],"predecessor-version":[{"id":1391,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=\/wp\/v2\/posts\/1385\/revisions\/1391"}],"wp:attachment":[{"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1385"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1385"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/daba-no-heya.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1385"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}